Latest News Russia-Aligned Hackers Abuse Viber to Target Ukrainian Users — Deep Dive into the Campaign, Tactics, and Defense Strategies January 9, 2026 Eagl3Sec A newly uncovered cyber campaign attributed to Russia-aligned threat actors has been weaponizing Viber messaging links and QR codes to distribute malware to Ukrainian individuals, organizations, and communities. This sophisticated…
CVE Critical AdonisJS Bodyparser Flaw (CVE-2026-21440): How a Path Traversal Bug Could Lead to Server Compromise January 9, 2026 Eagl3Sec A critically rated vulnerability has been disclosed in the AdonisJS framework’s BodyParser library, capable of enabling attackers to write arbitrary files to server filesystems — and under certain conditions, potentially…
Latest News Critical n8n Vulnerability (CVSS 9.9) Lets Authenticated Users Execute System Commands — What You Need to Know January 9, 2026 Eagl3Sec A newly disclosed critical security vulnerability in the popular open-source n8n workflow automation platform has sent shockwaves through the DevOps and automation community. Tracked as CVE-2025-68668 and assigned a near-maximum…
Latest News VS Code Forks Recommend Missing Extensions, Exposing Developers to Serious Supply-Chain Risk January 9, 2026 Eagl3Sec Developers relying on AI-powered forks of Microsoft Visual Studio Code (VS Code) have been warned of a subtle but potentially serious security gap that can be exploited for supply-chain attacks.…
Latest News What Is Identity Dark Matter? The Invisible Security Risk Lurking in Modern IT Environments January 9, 2026 Eagl3Sec In the world of cybersecurity, the term “identity dark matter” is rapidly gaining traction as security teams grapple with some of the most elusive blind spots in enterprise identity and…
Latest News Fake Booking Emails Redirect Hotel Staff to Malware‑Loaded BSoD Pages: A Sophisticated European Hospitality Sector Attack January 9, 2026 Eagl3Sec Cybersecurity researchers have uncovered a sophisticated phishing and malware campaign that is targeting hotel staff across the European hospitality sector by leveraging fake emails that appear to come from Booking.com…
Latest News Unpatched Firmware Flaw Exposes TOTOLINK EX200 to Full Remote Device Takeover – Security Experts Warn January 9, 2026 Eagl3Sec A serious firmware vulnerability affecting the TOTOLINK EX200 wireless range extender has been publicly disclosed by the CERT Coordination Center (CERT/CC) — and it remains unpatched, leaving users at risk…
Latest News Two Chrome Extensions on the Web Store Caught Stealing ChatGPT, DeepSeek Chats & Browsing Data from ~900,000 Users January 8, 2026 Eagl3Sec Security researchers have uncovered a disturbing new browser threat: two malicious Chrome extensions on the official Chrome Web Store that were designed to extract AI chatbot conversations and browsing activity…
Latest News SentinelOne 2025 Cloud Security Risk Report: In‑Depth Summary — New Threats, Misconfigurations, AI Surfaces & Supply Chain Risks January 8, 2026 Eagl3Sec The SentinelOne Cloud Security Risk Report 2025 paints a detailed and sobering picture of the evolving threat landscape affecting cloud environments across enterprises, government agencies, and critical infrastructure. Drawing from…
CVE CVE Program to Normalize Historic CVE Record Date/Time Fields – Major Update for Vulnerability Data Accuracy and Consistency January 8, 2026 Eagl3Sec In a significant move to improve the quality and usability of vulnerability data, the Common Vulnerabilities and Exposures (CVE) Program announced a new initiative to normalize the formatting of date…
